CVE-2025-14769

CVE-2025-14769 maps to FreeBSD ipfw denial of service. The issue is in the tcp-setmss handler, which may free packet data and error out without halting rule processing, allowing a subsequent rule to pass and causing a NULL pointer dereference. Exploitation would yield a DoS on a remote host using...

FreeBSD : FreeBSD -- ipfw denial of service (0b22e22a-dae9-11f0-80b8-bc241121aa0a)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 0b22e22a-dae9-11f0-80b8-bc241121aa0a advisory. In some cases, the tcp-setmss handler may free the packet data and throw an error without halting the...

PT-2025-51802

Name of the Vulnerable Software and Affected Versions FreeBSD affected versions not specified Description A remote code execution issue exists in the IPv6 autoconfiguration handler in FreeBSD. The issue is present in the rtsold background process and the rtsol utility. An attacker can achieve...

FreeBSD-SA-25:11.ipfw

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-25:11.ipfw Security Advisory The FreeBSD Project Topic: ipfw denial of service Category: core Module: ipfw Announced: 2025-12-16 Affects: FreeBSD 13 and 14...

FreeBSD -- ipfw denial of service

Problem Description: In some cases, the tcp-setmss handler may free the packet data and throw an error without halting the rule processing engine. A subsequent rule can then allow the traffic after the packet data is gone, resulting in a NULL pointer dereference. Impact: Maliciously crafted packe...

EUVD-2001-0951

Malware in sbrugna...

EUVD-2005-2021

Malware in sbrugna...

FreeBSD-SA-20:12.libalias

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-20:12.libalias Security Advisory The FreeBSD Project Topic: Insufficient packet length validation in libalias Category: core Module: libalias Announced:...

FreeBSD ipfw buffer overflow vulnerability (CNVD-2020-32362)

FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. ipfw is one of the IP firewall components. A buffer overflow vulnerability exists in ipfw in FreeBSD, which stems from a program's failure to properly validate packets, and can be exploited by an attacker to cause kernel...

FreeBSD : FreeBSD -- ipfw invalid mbuf handling (33edcc56-83f2-11ea-92ab-00163e433440)

Incomplete packet data validation may result in accessing out-of-bounds memory CVE-2019-5614 or may access memory after it has been freed CVE-2019-15874. Impact : Access to out of bounds or freed mbuf data can lead to a kernel panic or other unpredictable results. C Tenable Network Security, Inc...

FreeBSD-SA-20:10.ipfw

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-20:10.ipfw Security Advisory The FreeBSD Project Topic: ipfw invalid mbuf handling Category: core Module: kernel Announced: 2020-04-21 Credits: Maxime Villard...

FreeBSD -- ipfw invalid mbuf handling

Problem Description: Incomplete packet data validation may result in accessing out-of-bounds memory CVE-2019-5614 or may access memory after it has been freed CVE-2019-15874. Impact: Access to out of bounds or freed mbuf data can lead to a kernel panic or other unpredictable results...

Fwknop - Single Packet Authorization & Port Knocking

fwknop implements an authorization scheme known as Single Packet Authorization SPA for strong service concealment. SPA requires only a single packet which is encrypted, non-replayable, and authenticated via an HMAC in order to communicate desired access to a service that is hidden behind a firewa...

FreeBSD Security Advisory FreeBSD-SA-15:19.routed

============================================================================= FreeBSD-SA-15:19.routed Security Advisory The FreeBSD Project Topic: routed8 remote denial of service vulnerability Category: core Module: routed Announced: 2015-08-05 Credits: Hiroki Sato Affects: All supported version...

FreeBSD Security Advisory FreeBSD-SA-14:21.routed

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-14:21.routed Security Advisory The FreeBSD Project Topic: routed8 remote denial of service vulnerability Category: core Module: routed Announced: 2014-10-21...

FreeBSD 3.x/4.x ipfw Filtering Evasion Vulnerability

No description provided by source. source: www.securityfocus.com/bid/2293/info There exists a serious vulnerability in FreeBSD's implementation of packet filtering for IPv4 and IPv6. The vulnerability exists in situations where a filtering rule permits packets through if they are part of an...

Webfwlog - Firewall Log Analyzer

Webfwlog is a flexible web-based firewall log analyzer and reporting tool. It supports standard system logs for linux, FreeBSD, OpenBSD, NetBSD, Solaris, Irix, OS X, etc. as well as Windows XP®. Supported log file formats are netfilter, ipfilter, ipfw, ipchains and Windows XP®. Webfwlog also...

[fwknop] Single Packet Authorization and Port Knocking

fwknop stands for the "FireWall KNock OPerator", and implements an authorization scheme called Single Packet Authorization SPA. This method of authorization is based around a default-drop packet filter fwknop supports iptables on Linux, ipfw on FreeBSD and Mac OS X, and PF on OpenBSD and libpcap...

FreeBSD Security Advisory (FreeBSD-SA-05:13.ipfw.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-05:13.ipfw.asc ADV FreeBSD-SA-05:13.ipfw.asc OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft In...

FreeBSD Security Advisory (FreeBSD-SA-06:04.ipfw.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:04.ipfw.asc ADV FreeBSD-SA-06:04.ipfw.asc OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft In...